General

  • Target

    791d4bfbba6728fd10029088cc87b100_NeikiAnalytics

  • Size

    1.2MB

  • Sample

    240509-s6gy4sce95

  • MD5

    791d4bfbba6728fd10029088cc87b100

  • SHA1

    7465388ed6264ad9cc0068449535e48a27279e37

  • SHA256

    bd69376c6b8e4d09a04b3443701f334b81ace81f2c0233132a934e4371a0a0c0

  • SHA512

    96ec5e708ce5ead2215adc5813365f464e89fbd0c0e4119ffbe295328c208f7ed778b9a1142ba6cb6baa278c6941b6684b02febc2caab0866628617da00f99ec

  • SSDEEP

    12288:54AgFv/WHCXwpnsKvNA+XTvZHWuEo3oW2to:W5FXApsKv2EvZHp3oW2to

Malware Config

Targets

    • Target

      791d4bfbba6728fd10029088cc87b100_NeikiAnalytics

    • Size

      1.2MB

    • MD5

      791d4bfbba6728fd10029088cc87b100

    • SHA1

      7465388ed6264ad9cc0068449535e48a27279e37

    • SHA256

      bd69376c6b8e4d09a04b3443701f334b81ace81f2c0233132a934e4371a0a0c0

    • SHA512

      96ec5e708ce5ead2215adc5813365f464e89fbd0c0e4119ffbe295328c208f7ed778b9a1142ba6cb6baa278c6941b6684b02febc2caab0866628617da00f99ec

    • SSDEEP

      12288:54AgFv/WHCXwpnsKvNA+XTvZHWuEo3oW2to:W5FXApsKv2EvZHp3oW2to

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks